NinjaGram[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NinjaGram.exe
Size

4.0MB
MD5

d9d62fa50b064413e9eec5396b2efdda
SHA1

31e182e497a8d78a895c192462599ade0f9e766e
SHA256

d79dad8e03029294cddb908447fe6dd8927bbea055db007d8eacd0313a39be3b
SHA512

81dd534629ffa38a5ad38b62ba4bebff3a25382162442507f51439faa78f9be98c1bafca67c42b1bc5525853dd7aa7191671f00ef33e089806b862e35166b34b
SSDEEP

49152:P+8b3uHfUT/Pg6f2E6t6hwHA1ViXzTB5VCZ:P+lHfUTZf2E6t6hwHA1VQz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NinjaGram.exe

Files

NinjaGram.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ